Unsafe Token Transfers
Description
The protocol performs token transfers without checking the return value or using safe transfer methods. According to the ERC20 specification, the transfer() function "SHOULD throw if the message caller's account balance does not have enough tokens to spend." However, this is only a recommendation ("SHOULD"), not a requirement ("MUST"). Therefore, even fully compliant ERC20 tokens may choose not to revert on failed transfers, instead returning false.
This design choice in the ERC20 standard means that any token, whether compliant or not, could potentially return false instead of reverting on failed transfers. Notable examples include USDT, which is widely used but returns false on transfer failures. When using regular transfer() calls with such tokens, the transaction will appear successful even though the tokens were not actually transferred.
This creates significant risks:
Silent failures leading to loss of funds
Inconsistent internal accounting states in the registry
Disruption of oracle services due to unprocessed payments
Protocol functionality breaking when integrated with compliant tokens that don't revert
The issue affects all token transfer operations in the protocol, potentially compromising both the financial integrity and operational reliability of the oracle system.
Recommendation
Implement proper transfer success validation using OpenZeppelin's SafeERC20 library, which handles both reverting and non-reverting tokens correctly.
Lead Judging Commences
[KNOWN] - Low-35 Unsafe use of transfer()/transferFrom() with IERC20
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.